Seculabs eBook - Uniscan - Vulnerability Scanner and Web Crawler

  • View
    216

  • Download
    0

Embed Size (px)

Text of Seculabs eBook - Uniscan - Vulnerability Scanner and Web Crawler

  • 7/29/2019 Seculabs eBook - Uniscan - Vulnerability Scanner and Web Crawler

    1/12

  • 7/29/2019 Seculabs eBook - Uniscan - Vulnerability Scanner and Web Crawler

    2/12

    SECUGENIUS SECURITY SOLUTIONS--------------------------------------------------------------------------------------

    (A UNIT OF HARKSH TECHNOLOGIES PVT. LTD)

    Company Profile:

    Secugenius Security Solutions is a Student Entrepreneurial Company started by 2 Social Student

    Entrepreneurs in 2010 with an aim to make our country Cyber Crime Free. We at SECUGENIUS

    are headquartered at Ludhiana, the Manchester of Punjab. The main activities of Secugenius

    Security Solutions are providing training in Information Security and various professional courses.

    Secugenius Security Solutions is an organization which believes in inventing and implementing newideas to influence the technological minds of the youngsters

    Looking at the number of Cyber Crimes since last many years, We at Secugenius Security

    Solutions provides training on Ethical hacking & Cyber Security to students, IT Professionals, Bank

    Employees, Police officials.

    Secugenius conducts workshops in all parts of the country in various Colleges/institutions for the

    benefit of the students & making them aware of the latest trends in technological era of the

    Computer age. We believe in spreading knowledge to all the youngsters & growing minds of the

    nation so that they could serve the nation with perfect skill-sets in the field of Cyber Crime

    Investigation & Forensic Sciences

    Secugenius provides various security solutions to its clients by securing their websites from cyber

    attacks. We provide training to college students, graduates and professionals in various fields.

    Education is delivered to students through two modes i.e. Regular mode and Distance mode which

    are available as short term and long term courses.

    In the workshops conducted by Secugenius, participants can claim to be trained by the highly

    experienced & skilled corporate trainers from different parts of the nation. We believe in making

    the base of students to be as strong as possible. All the modules have been designed in order to

    provide students with specialized knowledge by specialized trainers.

    This library was furnished, managed and funded by the Founders and Directors of Secugenius

    Er. Harpreet Khattar &Er. Kshitij Adhlakha. The overall resource person for the content of

    the series of this Digital Library is Er. Chetan Soni - Sr. Security Specialist, Secugenius Security

    Solutions.

    This Online Digital Library has been initiated as a free resource & permanent

    resource on specialization basis for every student of Team Secugenius.

  • 7/29/2019 Seculabs eBook - Uniscan - Vulnerability Scanner and Web Crawler

    3/12

    Uniscan Vulnerability Scanner and Web Crawler

    Product ID No: SG/ODL/13031

    Founder & Director: Harpreet Khattar & Kshitij Adhlakha

    Resource Person: Chetan Soni

    Secugenius Security Solutions

    SCO-13A, Model Town Extn, Near Krishna Mandir,

    Ludhiana-141002, Punjab India

    support@secugenius.com,info@secugenius.com

    www.secugenius.com,www.seculabs.in

    mailto:support@secugenius.commailto:support@secugenius.commailto:info@secugenius.commailto:info@secugenius.commailto:info@secugenius.comhttp://www.secugenius.com/http://www.secugenius.com/http://www.seculabs.in/http://www.seculabs.in/http://www.seculabs.in/http://www.seculabs.in/http://www.secugenius.com/mailto:info@secugenius.commailto:support@secugenius.com
  • 7/29/2019 Seculabs eBook - Uniscan - Vulnerability Scanner and Web Crawler

    4/12

    Uniscan - It is a vulnerability scanner which finds vulnerabilities in Websystems and is licensed under the GNU General Public License 3.0 (GPL 3).

    It identifies the system pages through a Web Crawler and use of threads inthe crawler. It also controls the max no. of requests of crawler. It alsocontrols of variation of system pages and file extensions that are ignored.

    Step 1

    To Open Uniscan, please follow this path,

    Backtrack->Vulnerability Assessment -> Web ApplicationAssessment -> Web Vulnerability Scanners -> Uniscan

  • 7/29/2019 Seculabs eBook - Uniscan - Vulnerability Scanner and Web Crawler

    5/12

    Step 2

    Heres the first look of Uniscan,

  • 7/29/2019 Seculabs eBook - Uniscan - Vulnerability Scanner and Web Crawler

    6/12

    Step 3

    To use Help Option, We use ./uniscan.pl h option.

  • 7/29/2019 Seculabs eBook - Uniscan - Vulnerability Scanner and Web Crawler

    7/12

    Step 4

    For checking directories, we use this command,

    root@bt:/pentest/web/uniscan#perl ./uniscan.pl u http://www.facebook.com q

  • 7/29/2019 Seculabs eBook - Uniscan - Vulnerability Scanner and Web Crawler

    8/12

    Step 5

    For checking Files, we use this command,

    root@bt:/pentest/web/uniscan#perl ./uniscan.pl u http://www.harvard.edu/ -w

  • 7/29/2019 Seculabs eBook - Uniscan - Vulnerability Scanner and Web Crawler

    9/12

    Step 6

    For Dynamic Check, we use this command,

    root@bt:/pentest/web/Uniscan#perl ./uniscan.pl u http://www.secugenius.com/ -d

  • 7/29/2019 Seculabs eBook - Uniscan - Vulnerability Scanner and Web Crawler

    10/12

    Step 7

    For Static Check, we use this command,

    root@bt:/pentest/web/Uniscan#perl ./uniscan.pl u http://www.secugenius.com/ -s

  • 7/29/2019 Seculabs eBook - Uniscan - Vulnerability Scanner and Web Crawler

    11/12

    Step 8

    For Robots Check, we use this command,

    root@bt:/pentest/web/Uniscan#perl ./uniscan.pl u http://www.facebook.com/ -e

  • 7/29/2019 Seculabs eBook - Uniscan - Vulnerability Scanner and Web Crawler

    12/12

    Step 9

    For Stress Check, we use this command,

    root@bt:/pentest/web/Uniscan#perl ./uniscan.pl r u http://www.secugenius.com/

    You can also use these types of commands,